Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2007-3771
HistoryJul 15, 2007 - 10:30 p.m.

CVE-2007-3771

2007-07-1522:30:00
[email protected]
web.nvd.nist.gov
6

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:S/C:N/I:N/A:C

AI Score

6.5

Confidence

High

EPSS

0.01

Percentile

83.6%

JSON

Stack-based buffer overflow in the Internet E-mail Auto-Protect feature in Symantec AntiVirus Corporate Edition before 10.1, and Client Security before 3.1, allows local users to cause a denial of service (service crash) via a long (1) To, (2) From, or (3) Subject header in an outbound SMTP e-mail message. NOTE: the original vendor advisory referenced CVE-2006-3456, but this was an error.

Affected configurations

Nvd
Node
symantecclient_securityMatch2.0
OR
symantecclient_securityMatch3.0
OR
symantecclient_securityMatch3.0.1.1000
OR
symantecclient_securityMatch3.0.1.1007
OR
symantecclient_securityMatch3.0.1.1009
OR
symantecclient_securityMatch3.0.2
OR
symantecclient_securityMatch3.0.2.2000
OR
symantecclient_securityMatch3.0.2.2001
OR
symantecclient_securityMatch3.0.2.2002
OR
symantecclient_securityMatch3.0.2.2011
OR
symantecclient_securityMatch3.0.2.2021
OR
symantecnorton_antivirusMatch9.0corporate
OR
symantecnorton_antivirusMatch9.0.0.338corporate
OR
symantecnorton_antivirusMatch9.0.1corporate
OR
symantecnorton_antivirusMatch9.0.1.1.1000corporate
OR
symantecnorton_antivirusMatch9.0.1.1000corporate
OR
symantecnorton_antivirusMatch9.0.2corporate
OR
symantecnorton_antivirusMatch9.0.2.1000corporate
OR
symantecnorton_antivirusMatch9.0.3.1000corporate
OR
symantecnorton_antivirusMatch9.0.4corporate
OR
symantecnorton_antivirusMatch9.0.5corporate
OR
symantecnorton_antivirusMatch9.0.5.1100corporate
OR
symantecnorton_antivirusMatch10.0corporate
OR
symantecnorton_antivirusMatch10.0.1.1000corporate
OR
symantecnorton_antivirusMatch10.0.1.1007corporate
OR
symantecnorton_antivirusMatch10.0.2.2000corporate
OR
symantecnorton_antivirusMatch10.0.2.2001corporate
OR
symantecnorton_antivirusMatch10.0.2.2002corporate
OR
symantecnorton_antivirusMatch10.0.2.2010corporate
OR
symantecnorton_antivirusMatch10.0.2.2011corporate
OR
symantecnorton_antivirusMatch10.0.2.2020corporate
OR
symantecnorton_antivirusMatch10.0.2.2021corporate
VendorProductVersionCPE
symantecclient_security2.0cpe:2.3:a:symantec:client_security:2.0:*:*:*:*:*:*:*
symantecclient_security3.0cpe:2.3:a:symantec:client_security:3.0:*:*:*:*:*:*:*
symantecclient_security3.0.1.1000cpe:2.3:a:symantec:client_security:3.0.1.1000:*:*:*:*:*:*:*
symantecclient_security3.0.1.1007cpe:2.3:a:symantec:client_security:3.0.1.1007:*:*:*:*:*:*:*
symantecclient_security3.0.1.1009cpe:2.3:a:symantec:client_security:3.0.1.1009:*:*:*:*:*:*:*
symantecclient_security3.0.2cpe:2.3:a:symantec:client_security:3.0.2:*:*:*:*:*:*:*
symantecclient_security3.0.2.2000cpe:2.3:a:symantec:client_security:3.0.2.2000:*:*:*:*:*:*:*
symantecclient_security3.0.2.2001cpe:2.3:a:symantec:client_security:3.0.2.2001:*:*:*:*:*:*:*
symantecclient_security3.0.2.2002cpe:2.3:a:symantec:client_security:3.0.2.2002:*:*:*:*:*:*:*
symantecclient_security3.0.2.2011cpe:2.3:a:symantec:client_security:3.0.2.2011:*:*:*:*:*:*:*
Rows per page:
1-10 of 321

Related

cvelist 2
prion 1
cve 2
nvd 1
symantec 1
securityvulns 2
cvelist
cvelist
CVE-2006-3456
2007-05-11 10:00:00
CVE-2007-3771
2007-07-15 22:00:00
prion
prion
Stack overflow
2007-07-15 22:30:00
cve
cve
CVE-2006-3456
2007-05-11 10:19:00
CVE-2007-3771
2007-07-15 22:30:00
nvd
nvd
CVE-2006-3456
2007-05-11 10:19:00
symantec
symantec
Symantec Client Security Internet E-mail Auto-Protect Stack Overflow
2007-07-11 08:00:00
securityvulns
securityvulns
Symantec Norton Internet Security Code Execution
2007-05-12 00:00:00
iDefense Security Advisory 05.09.07: Symantec Norton Internet Security 2006 COM Object Security ByPass Vulnerability
2007-05-12 00:00:00

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:S/C:N/I:N/A:C

AI Score

6.5

Confidence

High

EPSS

0.01

Percentile

83.6%

JSON
Related for NVD:CVE-2007-3771
cvelist2prion1cve2nvd1symantec1securityvulns2